%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
OpenAI announced the addition of two advanced security measures for ChatGPT to address the growing risk of prompt injection attacks when AI systems connect to websites and external applications. These attacks can be exploited by third parties to trick the AI into executing malicious commands or leaking sensitive information. Both new measures are built upon the platform's existing sandbox mechanism, URL data leakage protection, and other multi-layered security systems.
The first protective measure introduced is Lockdown Mode (Lockdown Mode), an optional advanced setting for users with high security needs, not intended for general users. It reduces the risk of data leakage by strictly limiting how ChatGPT interacts with external systems. This mode deterministically disables or limits tools that are vulnerable to exploitation, such as web browsing, which will only access cached content, and features without strong security guarantees will be directly disabled.
This mode currently applies to ChatGPT Enterprise, Edu, healthcare, and teacher versions. Administrators can create roles in the dashboard settings to enable it and can finely control which external applications and specific operations are allowed under Lockdown Mode; OpenAI also plans to open this mode to consumer users in the coming months. Additionally, the Compliance API Logs Platform can help administrators carry out regulatory audits on application usage and data sharing.
The second measure is to uniformly label functions with higher security risks in ChatGPT, ChatGPT Atlas, and Codex with the **"Elevated Risk (Increased Risk)"** tag, standardizing the way risks are alerted.
OpenAI stated that some network-related capabilities, although they can enhance the practicality of AI, still carry risks that have not been fully addressed by industry protection measures. The label allows users to clearly understand the risks and decide for themselves whether to use them, especially in scenarios involving private data. For example, when developers enable network access for Codex, the label will appear on the interface, clearly informing them of changes after activation, potential risks, and suitable scenarios, along with risk mitigation suggestions.